CVE-2017-20177 in WangGuard PluginИнформация

Сводка

по MITRE • 06.02.2023

A vulnerability, which was classified as problematic, has been found in WangGuard Plugin 1.8.0. Affected by this issue is the function wangguard_users_info of the file wangguard-user-info.php of the component WGG User List Handler. The manipulation of the argument userIP leads to cross site scripting. The attack may be launched remotely. The name of the patch is 88414951e30773c8d2ec13b99642688284bf3189. It is recommended to apply a patch to fix this issue. VDB-220214 is the identifier assigned to this vulnerability.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Ответственный

VulDB

Резервировать

05.02.2023

Раскрытие

06.02.2023

Модерация

принято

Вход

VDB-220214

CPE

готов

CWE

CWE-79 (Подтверждённый)

CVSS

6.1 (NVD)

EPSS

0.00637

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-20177
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-20177
CVE Details	https://www.cvedetails.com/cve/CVE-2017-20177/

◂ Предыдущий Обзор Далее ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!